PHP Session Management

The Problem Of Persistance We need a way to remember if a user is logged in through different points in time. Normally the web is a stateless environment, we can, however, use a PHP session to achieve this. The Solution Upon login, we are given a cookie session file that…

Read this article

PHP Proper Password Handling

It is important we encrypt passwords in some way. If they are stored in plain text, then it is trivial for an attacker to extract data such as credentials or payment info after a data breach. Encrypting/Hashing Our Passwords Encrypted passwords cannot be used for access on their own.…

Read this article

Intro To Phishing Attack Theory

What Is HTML Phishing? Most websites return HTML files in some form. The fact that we can view them in the browser also means that they can be 'captured' and relayed, except instead of processing to the legit source, data is often sent elsewhere instead. Site choice is essentially endless,…

Read this article